CryptoLib icon indicating copy to clipboard operation
CryptoLib copied to clipboard
verified publisher icon nasa

FIPS IV Support

Open dccutrig opened this issue 3 years ago • 8 comments

In a FIPS mode the IV is randomly generated, which means it may not be in a rolling / counter mode. Will need to revisit the capability to allow unique IVs without window requirements (eg not a counter mode). Also future possibility.

dccutrig avatar Mar 03 '22 17:03 dccutrig

Looks like maybe our version of libgcrypt may not have the functionality for it to manage the IV for us just yet: https://dev.gnupg.org/T4873

Need to do some more research.

jlucas9 avatar Apr 04 '23 19:04 jlucas9

For Clarity:

Pick an encryption mode with IVs (Not a Counter type mode) and ensure windowing doesn't stop pseudo-random Ivs from being accepted.

dccutrig avatar Jun 22 '23 18:06 dccutrig